Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

369 advisories

Loading
A vulnerability in the file system permissions of Cisco IOS XE Software could allow an... Moderate Unreviewed
CVE-2020-3503 was published May 24, 2022
Insufficient policy enforcement in Blink in Google Chrome prior to 85.0.4183.83 allowed a remote... Moderate Unreviewed
CVE-2020-6562 was published May 24, 2022
Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prior to 85.0.4183.83 allowed a... Moderate Unreviewed
CVE-2020-6558 was published May 24, 2022
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with... Moderate Unreviewed
CVE-2020-10781 was published May 24, 2022
The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used... Moderate Unreviewed
CVE-2020-25284 was published May 24, 2022
A security feature bypass vulnerability exists when a Windows Projected Filesystem improperly... Moderate Unreviewed
CVE-2020-0805 was published May 24, 2022
ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via... Moderate Unreviewed
CVE-2020-24028 was published May 24, 2022
A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro... Moderate Unreviewed
CVE-2020-8602 was published May 24, 2022
OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories. Moderate Unreviewed
CVE-2020-24716 was published May 24, 2022
Cloud Foundry CAPI (Cloud Controller), versions prior to 1.97.0, when used in a deployment where... Moderate Unreviewed
CVE-2020-5417 was published May 24, 2022
Elementor 2.9.5 and below WordPress plugin allows authenticated users to activate its safe mode... Moderate Unreviewed
CVE-2020-20634 was published May 24, 2022
In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions... Moderate Unreviewed
CVE-2020-24394 was published May 24, 2022
Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8... Moderate Unreviewed
CVE-2020-0559 was published May 24, 2022
Some sensitive cookies in SAP Disclosure Management, version 10.1, are missing HttpOnly flag,... Moderate Unreviewed
CVE-2020-6267 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.10.7. Changes to e... Moderate Unreviewed
CVE-2019-20879 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.8.0. It allows attackers to partially... Moderate Unreviewed
CVE-2019-20884 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.7.1, 5.6.4, 5.5.3, and 4.10.6. It does not... Moderate Unreviewed
CVE-2019-20887 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows a... Moderate Unreviewed
CVE-2019-20875 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.10.0, 5.9.1, 5.8.2, and 4.10.9. A non... Moderate Unreviewed
CVE-2019-20869 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. Users can... Moderate Unreviewed
CVE-2019-20876 was published May 24, 2022
An access issue was addressed with improved access restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2020-9851 was published May 24, 2022
In Pydio Cells 2.0.4, once an authenticated user shares a file selecting the create a public link... Moderate Unreviewed
CVE-2020-12848 was published May 24, 2022
An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce... Moderate Unreviewed
CVE-2020-1056 was published May 24, 2022
An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys... Moderate Unreviewed
CVE-2019-7246 was published May 24, 2022
An issue was discovered in the "Ultimate Addons for Elementor" plugin before 1.24.2 for WordPress... Moderate Unreviewed
CVE-2020-13125 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API